1. OfficeRnD Help
  2. OfficeRnD Hybrid
  3. OfficeRnD Hybrid for Admins
  4. Integrations
  5. Directory and SSO
  6. Single Sign-On (SSO)

Single Sign-On (SSO) Authentication with Microsoft Azure

Avatar
Author: Krasto Milchev
Last Updated:

Introduction

In OfficeRnD Hybrid, you can implement a single sign-on using Microsoft Azure Active Directory. This integration will enable your employees to sign in to OfficeRnD Hybrid using their Active Directory credentials. The SSO can be implemented for both Web and Admin Portals.

Contents

Web Portal SSO

  1. Log in to your OfficeRnD Hybrid account
  2. Navigate to Settings/Integrations
  3. Expand the Authentication section and next to SSO Authentication click Activate.
  4. Click Configure and copy the Return URL. You will need to use it shortly.
    Edit_SSO.png
  5. Open your Azure portal - https://portal.azure.com/ and select the Azure Active Directory module.
    mceclip0.png
  6. Register a New Application by navigating to App registrations and clicking + New Registration.
    mceclip1.png
  7. While registering the application you will be asked for a Web Redirect URL. Paste the "Return URL" copied from step 1.
    mceclip2.png
  8. After successfully registering the application note down the Application (client) ID and copy it in a safe place.
    mceclip3.png
  9. Then from the sidebar, navigate to Certificates & secrets and click to create a New client secret.
    mceclip4.png
  10. Give your secret a descriptive name,  set an expiration period (if necessary), and save it.
  11. After adding the secret, copy the text from the Value column.
    mceclip6.png
  12. Go back to your account in OfficeRnD Hybrid
  13. Navigate to Settings/Integrations and under SSO Authentication click Configure.
  14. Paste both the Application client ID and client secret you acquired in the previous steps. Use Client ID and Client Secret fields in OfficeRnD
  15. In the Discovery URL field use the Discovery ID template. Replace the {Tenant ID} in the URL with the Tenant ID of your organization. You can find the Tenant ID under Tenant properties in Microsoft Azure.
    Discovery ID template: https://login.microsoftonline.com/{Tenant ID}/v2.0/.well-known/openid-configuration
  16. Select Enable Automatic Account Activation - With this setting enabled - employees that already exist in OfficeRnD will be allowed to log into the Portal without needing to be explicitly invited. If this setting is disabled - employees without prior access to the Portal will need to have it Enabled by an administrator.
  17. Click Update.

Admin Portal SSO

After you have configured the Web Portal SSO, you can add your Admin Portal SSO as well.

  1. Click Configure on the SSO integration in OfficeRnD.
  2. Click Activate Admin Portal SSO.
  3. Copy the Return URL.
  4. Open your newly created app in Azure.
  5. Switch to the Authentication section
  6. Click Add URI under the Web section.
  7. Paste the copied Return URL.
  8. Save your changes in both platforms.

sso1.gif

Was this article helpful?
8 out of 11 found this helpful

Comments

0 comments

Please sign in to leave a comment.